[TriLUG] copying files

Bill Farrow bill at arrowsreach.com
Fri Jun 22 13:41:03 EDT 2012


On Fri, Jun 22, 2012 at 1:17 PM, Joseph Mack NA3T <jmack at wm7d.net> wrote:
> Someone could take the box home and open it up.

So you will have to treat the client boxes as compromised at all
times.  The only way to secure this properly is at the server.

To provide a level of security, you can use the rsync daemon
configured to have each client authenticate with a separate username
and password, and also separate the file accesses and limit them to
write only.  All authentication is done by rsyncd and you don't need
to create accounts on the server for each client.

Therefore clients would never have shell access on the server, can
only write files to a particular directory on the server, and do not
have access to files from other clients.

Using rsyncd might also give you a speed up because it will not
encrypt the data during transfer.  If you want encryption, use it over
ssh.

Bill



More information about the TriLUG mailing list